CVE-2026-45868

NONE EPSS 5.1%
Published May 27, 20261mo ago · Modified Jun 17, 20261w ago
Find Similar
Published May 27, 2026 1mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: pinctrl: single: fix refcount leak in pcs_add_gpio_func() of_parse_phandle_with_args() returns a device_node pointer with refcount incremented in gpiospec.np. The loop iterates through all phandles but never releases the reference, causing a refcount leak on each iteration. Add of_node_put() calls to release the reference after extracting the needed arguments and on the error path when devm_kzalloc() fails. This bug was detected by our static analysis tool and verified by my code review.

Threat Intelligence

EPSS Exploit Probability
5.1% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

References 8

  • git.kernel.org https://git.kernel.org/stable/c/191bfd5710d6a7f48ba4315d8d3e908dcc15243c
  • git.kernel.org https://git.kernel.org/stable/c/353353309b0f7afa407df29e455f9d15b5acc296
  • git.kernel.org https://git.kernel.org/stable/c/3e3b28bb0b6ddc521a4fdd1c1ba0d35017a0796b
  • git.kernel.org https://git.kernel.org/stable/c/456a60d06c09a92680dc35fabca68024badcc28e
  • git.kernel.org https://git.kernel.org/stable/c/5b9e84d27e310f22c4ba45fedbc4f5baf43dd823
  • git.kernel.org https://git.kernel.org/stable/c/7814b1431848854b56717086e2b61bea3c59753d
  • git.kernel.org https://git.kernel.org/stable/c/99cc7352156c65201c675f750e0e77c4c73d93f5
  • git.kernel.org https://git.kernel.org/stable/c/e2e367e56bacb93ce5ac73f0b3297d5c83d38dd4

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.